Adobe Security Updates for September 2017

Adobe has released four security updates for Adobe Flash Player (APSB17-28), Adobe RoboHelp(APSB17-28), and Adobe Cold Fusion (APSB17-30) which covers a total of 8 CVE’s.

Adobe Flash Player address two critical memory corruption vulnerabilities that could lead to code execution.

Adobe Cold Fusion address a critical XML parsing vulnerability, an important cross-site scripting vulnerability that could lead to information disclosure and a mitigation for unsafe Java deserialization that could result in remote code execution.

Adobe RoboHelp update resolves an important input validation vulnerability that could be used in a cross-site scripting attack, as well as an unvalidated URL redirect vulnerability rated moderate that could be used in phishing campaigns.

Affected Versions:
Adobe Flash Player Desktop Runtime26.0.0.151 and earlier versions on Windows and Macintosh and Linux.Adobe Flash Player for Google Chrome 26.0.0.151 and earlier versions on Windows, Macintosh, Linux, and ChromeOS.
Adobe Flash Player for Microsoft Edge and Internet Explorer 26.0.0.151 and earlier versions for Windows 10 and 8.1